Log and Configuration Files

This section describes some log and configuration files you can examine during the troubleshooting.

Files on Security Group Members in Security Groups

Feature	File
Additional cluster Two or more Security Gateways that work together in a redundant configuration - High Availability, or Load Sharing. information	`$FWDIR/log/cpha_policy.log.*`
All logs that do not have a dedicated log file	`/var/log/junk.log.dbg`
Command auditing	`/var/log/asgaudit.log*`
CPD daemon	`$CPDIR/log/cpd.elg`
Discovering the hardware components	`/var/log/start_linker.log.dbg`
Distribution	`/var/log/dist_mode.log*`
Dividing physical interfaces to slave BackPlane interfaces and assembling the bond (BPEth) interfaces	`/var/log/start_tor_sgm.log.dbg` `/var/log/start_bfm.log.dbg`
Dynamic Routing	`/var/log/routed.log`
Early boot configuration cloning	`/var/log/image_clone.log.dbg`
Expert mode shell auditing	`/var/log/command_logger.log*`
FWD daemon	`$FWDIR/log/fwd.elg`
FWK daemon (VSX Virtual System Extension. Check Point virtual networking solution, hosted on a computer or cluster with virtual abstractions of Check Point Security Gateways and other network devices. These Virtual Devices provide the same functionality as their physical counterparts. information)	`$FWDIR/log/fwk.elg.*` (in the context of each Virtual System)
Gaia Check Point security operating system that combines the strengths of both SecurePlatform and IPSO operating systems. Alerts	`/var/log/send_alert.*`
Gaia Clish The name of the default command line shell in Check Point Gaia operating system. This is a restricted shell (role-based administration controls the number of commands available in the shell). auditing	`/var/log/auditlog*`
Gaia First Time Configuration Wizard	`/var/log/ftw_install.log`
Gaia OS installation	`/var/log/anaconda.log`
General log file	`/var/log/messages*`
Information about the dedicated Sync interfaces	`/var/log/start_smo.log.dbg`
LLDP updates	`/var/log/smartd.log.dbg` Also, run the `lldpctl` command
Log Servers	`/var/log/log_servers*`
Pulling the Security Group A logical group of Security Appliances that provides Active/Active cluster functionality. A Security Group can contain one or more Security Appliances. Security Groups work separately and independently from each other. To the production networks, a Security Group appears a single Security Gateway. Every Security Group contains: (A) Applicable Uplink ports, to which your production networks are connected; (B) Security Appliances (the Quantum Maestro Orchestrator determines the applicable Downlink ports automatically); (C) Applicable management port, to which the Check Point Management Server is connected. configuration, rebooting, cluster configuration	`$FWDIR/log/blade_config.*`
Reboot logs	`/var/log/reboot.log`
Security Group installation	`/var/log/start_mbs.log`
Silent install when adding a new Security Group Member to an existing Security Group	`/var/log/silent_install.log.dbg`
Synchronization of the new configuration to the Gaia database	`/var/log/start_smo_1.log.dbg`
VPND daemon	`$FWDIR/log/vpnd.elg*`

Files on Quantum Maestro Orchestrators

Feature	File
All logs that do not have a dedicated log file	`/var/log/junk.log.dbg`
Applying Security Group configuration	`/var/log/ssm_sg.log.dbg`
Configuring the SDK	`/var/log/messages`
Information about Security Groups	`/etc/sgdb.json`
Information about detected Security Group Members	`/etc/rsrcdb.json`
LLDP updates	`/var/log/smartd.log.dbg` Also, run the `lldpctl` command
Starting of the SDK	`/var/log/start_tor_ssm.log.dbg`